File _patchinfo of Package patchinfo

<patchinfo incident="11842">
  <issue tracker="cve" id="2019-18899"/>
  <issue tracker="cve" id="2020-5202"/>
  <issue tracker="bnc" id="1157706">VUL-0: CVE-2020-5202: apt-cacher-ng: acngtool uses localhost connection instead of socket by default</issue>
  <issue tracker="bnc" id="1157703">VUL-0: CVE-2019-18899: apt-cacher-ng: apt-cacher-ng runs as root, insecure use of /run/apt-cacher-ng</issue>
  <packager>mgerstner</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for apt-cacher-ng</summary>
  <description>This update for apt-cacher-ng fixes the following issues:

- CVE-2019-18899: Fixed a symlink attack which could allow to overwrite arbitrary data (boo#1157703).
- CVE-2020-5202: Fixed an information leak if a local user won a race condition to listen to localhost:3142 (boo#1157706).
</description>
</patchinfo>